Search
Search Results (356 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-42306 | 1 Microsoft | 4 Azure Active Directory, Azure Active Site Recovery, Azure Automation and 1 more | 2024-11-21 | 8.1 High |
| An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a user or service in the tenant with application read access to read the private key data that was added to the application. Azure AD addressed this vulnerability by preventing disclosure of any private key values added to the application. Microsoft has identified services that could manifest this vulnerability, and steps that customers should take to be protected. Refer to the FAQ section for more information. For more details on this issue, please refer to the MSRC Blog Entry. | ||||
| CVE-2021-42304 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 6.6 Medium |
| Azure RTOS Elevation of Privilege Vulnerability | ||||
| CVE-2021-42303 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 6.6 Medium |
| Azure RTOS Elevation of Privilege Vulnerability | ||||
| CVE-2021-42302 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 6.6 Medium |
| Azure RTOS Elevation of Privilege Vulnerability | ||||
| CVE-2021-42301 | 1 Microsoft | 2 Azure Real Time Operating System, Azure Rtos | 2024-11-21 | 3.3 Low |
| Azure RTOS Information Disclosure Vulnerability | ||||
| CVE-2021-42300 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 6 Medium |
| Azure Sphere Tampering Vulnerability | ||||
| CVE-2021-41376 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 2.3 Low |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-41375 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 4.4 Medium |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-41374 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 6.7 Medium |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-36956 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 4.4 Medium |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-36949 | 1 Microsoft | 2 Azure Active Directory Connect, Azure Active Directory Connect Provisioning Agent | 2024-11-21 | 7.1 High |
| Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability | ||||
| CVE-2021-36943 | 1 Microsoft | 1 Azure Cyclecloud | 2024-11-21 | 4 Medium |
| Azure CycleCloud Elevation of Privilege Vulnerability | ||||
| CVE-2021-33762 | 1 Microsoft | 1 Azure Cyclecloud | 2024-11-21 | 7 High |
| Azure CycleCloud Elevation of Privilege Vulnerability | ||||
| CVE-2021-28460 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 8.1 High |
| Azure Sphere Unsigned Code Execution Vulnerability | ||||
| CVE-2021-28459 | 1 Microsoft | 1 Azure Devops Server | 2024-11-21 | 6.1 Medium |
| Azure DevOps Server Spoofing Vulnerability | ||||
| CVE-2021-27080 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 9.3 Critical |
| Azure Sphere Unsigned Code Execution Vulnerability | ||||
| CVE-2021-27075 | 1 Microsoft | 5 Azure Container Instances, Azure Container Registry, Azure Kubernetes Service and 2 more | 2024-11-21 | 6.8 Medium |
| Azure Virtual Machine Information Disclosure Vulnerability | ||||
| CVE-2021-27074 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 6.2 Medium |
| Azure Sphere Unsigned Code Execution Vulnerability | ||||
| CVE-2021-27067 | 1 Microsoft | 2 Azure Devops Server, Team Foundation Server | 2024-11-21 | 6.5 Medium |
| Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability | ||||
| CVE-2021-26444 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 3.3 Low |
| Azure RTOS Information Disclosure Vulnerability | ||||